php curl_exec vulnerability with cloudlinux

simplysup

Junior Member

Join Date: Mar 2021

Posts: 26
- Share
- Tweet
#1

php curl_exec vulnerability with cloudlinux

09-18-2018, 01:23 PM

Dear Guys,

Ive installed cpanel with cloudlinux and cagefs.
I want to know some details about php functions vulnerabilities.
many of our customers need some functions like curl_exec, phpinfo , ... .
Is there any vulnerability with those functions (specially curl_exec) I mentioned above?
Please share with me.
Thank you very much.

Regards.
Tags: None
ighertesco

Senior Member

Join Date: Nov 2016

Posts: 184
- Share
- Tweet
#2

09-19-2018, 05:12 PM

Hello,

Each users process is executed inside the "cage", i.e. the real file system is not visible to the customer. So it is pretty safe to allow using required PHP functions. In other words, the user wont be able to harm the server if the account will be compromised, but it does not protect the account from customers software vulnerabilities, such as outdated CMS, etc
Comment

Announcement